The world’s largest humanitarian organization, with a network of 192-member National Societies. The overall aim of the organization is “to inspire, encourage, facilitate, and promote at all times all forms of humanitarian activities by National Societies with a view to preventing and alleviating human suffering and thereby contributing to the maintenance and promotion of human dignity and peace in the world.” The organization works to meet the needs and improve the lives of vulnerable people before, during and after disasters, health emergencies and other crises.
Global IT Team Lead and Security Architect
Feladatok
The position holder specializes in leading the design, optimization, and maintenance of Information Systems infrastructures, security services, and cloud platforms for an optimal and cost-effective services and systems availability, security and scalability to support the global organization critical business functions and end-user services. This includes services in IT eecurity, networking, data centre, messaging and cloud management, and all underlying hardware for the WinTel server architecture.
The job purpose is to:
- Lead, manage and coach the Infrastructure support and Security Operation unit.
- Deliver high-quality IT infrastructure support and Informational Security services to the Organization in line with Enterprise Architecture and ITD standards and policies.
- Act as subject matter expert in the area of Information Security, Server technology, and management – using the WinTel platform, including expertise on Server Hardware, Windows Server software, Storage technologies, Networking, cloud platforms (SaaS, PaaS, IaaS), and security solutions;
- Act as a focal point, handle and manage escalation process for issues with systems and services within the scope of IT infrastructure support and Security Operation services.
- Guarantee data and information security, availability, and integrity through strong operational competencies using the ITIL and other applicable frameworks.
- Support Enterprise Architecture function by participating in the design and implementation of global information security programs, developing a security maturity model, and ensuring compliance of information systems.
- Act as an SME, and take on other supporting roles and responsibilities as required to contribute to the scoping, design, and implementation of projects affecting the Infrastructure and CyberSecurtiy domains.
- Build up, stimulate and maintain respectful business relations with the providers and suppliers for the services in the unit's scope.
- Develop and implement and support IT standards, processes, and policies with global scope, training materials, and operational procedures to achieve efficiency, quality output, and uniformity of performance to the various organizational and National Society stakeholders.
Követelmények
Education
- Engineering degree in computer sciences discipline or equivalent experience
- ITIL certification or equivalent experience and proven track record of ITIL procedures use in an enterprise environment
- Microsoft Certified Solutions Associate or Engineer (MCSA/MCSE) – Server and Cloud Infrastructure are required.
- Information Systems Security certificate or willingness to acquire those deemed necessary.
Experience
- Minimum 10 years of professional experience in the administration, setup, maintenance, and management of data centers
- Minimum 10 years of professional experience in the administration, setup, maintenance, and management of Windows Servers, including failover clustering
- Minimum 5 years of experience in the architecture and implementation of robust, highly-available, and secure information systems, tools, processes.
- Minimum 5 years of professional experience in managing enterprise-grade firewall and/or IDS/IPS systems. Knowledge of and ability to effectively troubleshoot issues on protocol layers is a must. Experience with SD-WAN and APM is an advantage.
- Minimum 3 years of professional experience in operational maintenance and configuration of hybrid cloud infrastructure. (O365, AzureAD, AzureAD Connect, Web Application Proxy…etc.)
- Understanding networking concepts, topologies, subnetting, and protocols: OSI, TCP/UDP, CIDR/VLSM, NAT/PAT, L2TP/IPSEC, BGP/OSPF, VRRP is a must.
- Experience in conducting ethical hacking activities and other simulated cyber-attacks, performing risks and vulnerability assessments.
- Active and hands-on experience in incident hunting using Microsoft-provided on premises and cloud-based platforms and services and/or well-known third-party applications.
- Experience in and proven track record of business account management and procurement activities in particular to supplier selection processes (RFP/RFI), contract negotiations, service delivery supervision, invoice approval, and settlement of billing disputes.
- Experience in the development, implementation, and operative management of CyberSecurity functions (CSIRT/SOC/SecOps/IDR/DR) and services.
- Experience in service delivery management and reporting tools
- Experience in managing teams in a supervisory role.
Preferred
- Experience with the implementation, configuration, custom dashboard development, and automation of SIEM systems and alerts.
Knowledge and Skills
- Excellent knowledge and proven experience in Windows Server 2012 or 2016, 2019 Active Directory, Active Directory Federation Services, and Active Directory Certificate Services management.
- Excellent knowledge and proven experience with software deployment solution tools (SCCM or Intune is an advantage)
- Good knowledge of antivirus policies and deployment (McAfee and Microsoft) applied to servers and workstations protection
- Excellent knowledge of cloud concepts (IaaS, SaaS, PaaS), with a proven track record of the management of high-performance computing infrastructure.
- Good knowledge of industry-standard monitoring systems (MS SCOM, Azure Monitoring, Zabbix…etc.)
- Excellent knowledge combined with a profound technical understanding of the various protocols involved in the user/device/claim authentication-authorization, file sharing, email delivery, and cryptography operations in a Microsoft Active Directory Domain infrastructure.
- Good knowledge of TLS/SSL protocols and certificate management is required.
- Advanced, hands-on PowerShell skills and experience are a must.
- Proven team player, ability to adjust to different cultures and languages
- Adept at analysis, problem-solving, solution and end-user result-oriented
- Affinity for teamwork, collaborative attitude, open-minded and adaptable
- Well organized, able to work under pressure and manage emergencies
- Good analytical skills to interpret problems identifies solutions and possible side effects.
Amit kínálunk
- cafeteria benefits
- medical insurance
- personalized home office options
- frequent opportunities to travel globally
Munkavégzés helye